Best of the Week
Most Popular
1. Gold vs Cash in a Financial Crisis - Richard_Mills
2.Current Stock Market Rally Similarities To 1999 - Chris_Vermeulen
3.America See You On The Dark Side Of The Moon - Part2 - James_Quinn
4.Stock Market Trend Forecast Outlook for 2020 - Nadeem_Walayat
5.Who Said Stock Market Traders and Investor are Emotional Right Now? - Chris_Vermeulen
6.Gold Upswing and Lessons from Gold Tops - P_Radomski_CFA
7.Economic Tribulation is Coming, and Here is Why - Michael_Pento
8.What to Expect in Our Next Recession/Depression? - Raymond_Matison
9.The Fed Celebrates While Americans Drown in Financial Despair - John_Mauldin
10.Hi-yo Silver Away! - Richard_Mills
Last 7 days
Buying a Custom Built Gaming PC From Overclockers.co.uk - 1. Delivery and Unboxing - 17th Feb 20
BAIDU (BIDU) Illustrates Why You Should NOT Invest in Chinese Stocks - 17th Feb 20
Financial Markets News Report: February 17, 2020 - February 21, 2020 - 17th Feb 20
NVIDIA (NVDA) GPU King For AI Mega-trend Tech Stocks Investing 2020 - 17th Feb 20
Stock Market Bubble - No One Gets Out Of Here Alive! - 17th Feb 20
British Pound GBP Trend Forecast 2020 - 16th Feb 20
SAMSUNG AI Mega-trend Tech Stocks Investing 2020 - 16th Feb 20
Ignore the Polls, the Markets Have Already Told You Who Wins in 2020 - 16th Feb 20
UK Coronavirus COVID-19 Pandemic WARNING! Sheffield, Manchester, Birmingham Outbreaks Probable - 16th Feb 20
iShares Nasdaq Biotechnology ETF IBB AI Mega-trend Tech Stocks Investing 2020 - 15th Feb 20
Gold Stocks Still Stalled - 15th Feb 20
Is The Technology Stocks Sector Setting Up For A Crash? - 15th Feb 20
UK Calm Before Corona Virus Storm - Infections Forecast into End March 2020 - 15th Feb 20
The Growing Weaponization of Space - 14th Feb 20
Will the 2020s Be Good or Bad for the Gold Market? - 14th Feb 20
Predictive Modeling Suggests Gold Price Will Break Above $1650 Within 15~30 Days - 14th Feb 20
UK Coronavirus COVID-19 Infections and Deaths Trend Forecast 2020 - 14th Feb 20
Coronavirus, Powell and Gold - 14th Feb 20
How the Corona Virus is Affecting Global Stock Markets - 14th Feb 20
British Pound GBP Trend and Elliott Wave Analysis - 13th Feb 20
Owning and Driving a Land Rover Discovery Sport in 2020 - 2 YEAR Review - 13th Feb 20
Shipping Rates Plunge, Commodities and Stocks May Follow - 13th Feb 20
Powell says Fed will aggressively use QE to fight next recession - 13th Feb 20
PALLADIUM - THIS Is What a Run on the Bank for Precious Metals Looks Like… - 13th Feb 20
Bitcoin: "Is it too late to get in?" Get Answers Now - 13th Feb 20
China Coronavirus Infections Soar by 1/3rd to 60,000, Deaths Jump to 1,367 - 13th Feb 20
Crude Oil Price Action – Like a Coiled Spring Already? - 13th Feb 20
China Under Reporting Coronavirus COVID-19 Infections, Africa and South America Hidden Outbreaks - 12th Feb 20
Will USD X Decline About to Trigger Precious Metals Rally - 12th Feb 20
Copper Market is a Coiled Spring - 12th Feb 20
Dow Theory Stock Market Warning from the Utilities Index - 12th Feb 20
How to Get Virgin Media Engineers to FIX Hub 3.0 Problems and NOT BS Customers - 12th Feb 20
China Under Reporting Coronavirus COVID-19 Infections by 66% Due to Capacity Constraints - 12th Feb 20
Is Coronavirus the Black Swan That Takes Gold To-Da-Moon? - 12th Feb 20
Stock Market 2020 – A Close Look At What To Expect - 12th Feb 20
IBM AI Mega-trend Tech Stocks Investing 2020 - 11th Feb 20
The US Dollar’s Subtle Message for Gold - 11th Feb 20
What All To Do Before Opening A Bank Account For Your Business - 11th Feb 20
How and When to Enter Day Trades & Swing Trade For Maximum Gains - 11th Feb 20
The Great Stock Market Dichotomy - 11th Feb 20
Stock Market Sector Rotation Should Peak Within 60+ Days – Part II - 11th Feb 20
CoronaVirus Pandemic Stocks Bear Market Risk 2020? - Video - 11th Feb 20

Market Oracle FREE Newsletter

Nadeem Walayat Financial Markets Analysiis and Trend Forecasts

Keeping Your Cryptos Safe From Crooks

Currencies / BlockChain Nov 23, 2017 - 12:33 PM GMT

By: Avi_Gilburt

Currencies

In our first article together, Ryan and I spoke about how to start making your first crypto currency purchases. We now want to address security. While neither of us are computer security experts, we have subscribers that are. They have helped form our thinking.

We suggest using this article to jumpstart the process of getting your digital assets secure. If you are interested in the crypto space, please make security your top concern. While our article is elementary, we provide some links we found helpful.

We also hope this article generates lively discussion. If there is any further security information of which you believe we should be aware, please feel free to post your comments below.


Why So Vulnerable?

First, we need to address a myth that still exists regarding the blockchain. Using current technology, the blockchain is not hackable or corruptible. Once a transaction exists on the blockchain, it is immutable. Today, hacks are not perpetrated against the blockchain. Rather, users or organizations are the vulnerable ones.

If an account or wallet is accessed by a hacker in such a way that they can create transactions instead of the owner, one’s coins become completely vulnerable. The decentralized and borderless nature of cryptos, which is normally a benefit, is also their greatest vulnerability. A hacker may simply move coins to an address they control, and those coins will never be found again. No one is party to the transaction but the owner and the hacker so the owner may be left to fend for himself.

Forms of Attack

There are two big categories of attack to watch out for. The ‘inside job’ is where an exchange is hacked, usually with the help of an employee. The more common attack is a direct user attack, where a user is compromised, usually via the stealing of credentials for an online exchange, or exposure of their private keys.

We hear most about direct user attacks, and two of our subscribers have been hacked, and have lost their funds.

A common way a user is compromised involves getting a user to enter their credentials and 2nd factor authentication into a fake website. A bot captures that info and instantly logs into the real site, disables the two-factor authentication (if they have it), and liquidates the account before the two-factor authentication expires.

Key logging viruses may also track a user’s credentials when they logon to a legitimate site. This requires a direct compromise of the user’s computer or device.

Finally a copy and paste virus that infects a computer a convert a crypto address pasted at the time a user sends cryptos, causing the user to send coin to the attacker’s address.

Getting Secure

Here are the basic “musts” of good security. If you are diligent with these, you can avoid most direct user hacks:

“Keep clean.” Given the above noted potential attacks, keep your computer free of viruses, and you’ll win half the battle. Some users we know including Ryan, have a separate machine to make trades online and never installs any software beyond the browser on that trading computer. A chromebook is a good cheap option for $150-250. If you are a techy person, you might consider the use of a virtual machine on your computer.

Use difficult and unique passwords for all crypto related sites and software. Many people use passwords that are quite easy to hack. Consider using over 10 digits, with symbols, numbers, and caps. Consider changing passwords regularly, say every 30 days.

Always use two-factor authentication (2FA) on all crypto trading sites. Always copy the private keys exchanges provide you when you start 2FA, which allows you to restore your authenticator on another device. The common 2FA apps are Authy and Google Authenticator.

Do not use your phone number as a recovery source for any email or authentication app tied to a crypto account. Security at cellular carriers is too lax and the Equifax hack raises the risk that your private information will allow hackers to take control of your phone number.

When copying and pasting a crypto address for sending assets to other addresses, double check the address. There are viruses that hijack the copy and paste function so you enter a crypto address that doesn’t belong to you, sending coins to the hacker.

Once you’ve started an account somewhere, bookmark the site and only go to the site through that bookmark. Never hit a link in an email, and be careful if hitting a link from a Google search. Double check the URL.

If you keep custody of funds, such as in a wallet app, always copy down your private keys. Put them on a thumbdrive or on paper and in a secure location. This will allow you to restore funds if your machine goes down.

Ryan has half of each key encrypted on two separate cloud storage services in the event he loses his offline version.

Finally, the Hardware wallet is a very good approach to security. Trezor and Ledger are the leading brands. They hold the private keys encrypted in the hardware, and can be unplugged from your device. They are not easy to use, so you might choose to keep your actively traded funds on an exchange. However keeping your long term holdings away from hackers on a hardware wallet is a good idea.

Conclusion

Trading crypto currencies is very rewarding financially, but due to their decentralized and borderless nature, you have to be the one responsible for your own security. This extra effort does keep the less tech savy out of the market.

Additional Links:

There is more you can do. For more advanced topics in security, here are some links we found helpful:

Advanced password technique:

How to Build a (Nearly) Hack-Proof Password System with LastPass and a Thumb Drive

Regarding the issue with carriers:

Here's How an Attacker Can Bypass Your Two-Factor Authentication

Recovery codes for Authenticator:

What Happens If I Use Two-Factor Authentication and Lose My Phone?

Thoughts on CNBC:

This is how you can protect your cryptocurrencies from hackers

Avi Gilburt is a widely followed Elliott Wave technical analyst and author of ElliottWaveTrader.net (www.elliottwavetrader.net), a live Trading Room featuring his intraday market analysis (including emini S&P 500, metals, oil, USD & VXX), interactive member-analyst forum, and detailed library of Elliott Wave education.

© 2017 Copyright Avi Gilburt - All Rights Reserved Disclaimer: The above is a matter of opinion provided for general information purposes only and is not intended as investment advice. Information and analysis above are derived from sources and utilising methods believed to be reliable, but we cannot accept responsibility for any losses you may incur as a result of this analysis. Individuals should consult with their personal financial advisors.


© 2005-2019 http://www.MarketOracle.co.uk - The Market Oracle is a FREE Daily Financial Markets Analysis & Forecasting online publication.


Post Comment

Only logged in users are allowed to post comments. Register/ Log in

6 Critical Money Making Rules